Vulnerabilities > CVE-2022-26779 - Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in Apache Cloudstack

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

high complexity

apache

CWE-338

NVD

Published: 2022-03-15

Updated: 2022-03-22

Summary

Apache CloudStack prior to 4.16.1.0 used insecure random number generation for project invitation tokens. If a project invite is created based only on an email address, a random token is generated. An attacker with knowledge of the project ID and the fact that the invite is sent, could generate time deterministic tokens and brute force attempt to use them prior to the legitimate receiver accepting the invite. This feature is not enabled by default, the attacker is required to know or guess the project ID for the invite in addition to the invitation token, and the attacker would need to be an existing authorized user of CloudStack.

Vulnerable Configurations

Part	Description	Count
Application	Apache Apache Cloudstack 2.0 Apache Cloudstack 2.0.1 Apache Cloudstack 2.1.0 Apache Cloudstack 2.1.1 Apache Cloudstack 2.1.2 Apache Cloudstack 2.1.3 Apache Cloudstack 2.1.4 Apache Cloudstack 2.1.5 Apache Cloudstack 2.1.6 Apache Cloudstack 2.1.7 Apache Cloudstack 2.1.8 Apache Cloudstack 2.1.9 Apache Cloudstack 2.1.10 Apache Cloudstack 2.2.0 Apache Cloudstack 2.2.1 Apache Cloudstack 2.2.2 Apache Cloudstack 2.2.3 Apache Cloudstack 2.2.5 Apache Cloudstack 2.2.6 Apache Cloudstack 2.2.7 Apache Cloudstack 2.2.8 Apache Cloudstack 2.2.9 Apache Cloudstack 2.2.11 Apache Cloudstack 2.2.12 Apache Cloudstack 2.2.13 Apache Cloudstack 2.2.14 Apache Cloudstack 3.0.0 Apache Cloudstack 3.0.1 Apache Cloudstack 3.0.2 Apache Cloudstack 4.0.0 Apache Cloudstack 4.0.1 Apache Cloudstack 4.0.2 Apache Cloudstack 4.1.0 Apache Cloudstack 4.1.1 Apache Cloudstack 4.2.0 Apache Cloudstack 4.2.1 Apache Cloudstack 4.3.0 Apache Cloudstack 4.3.1 Apache Cloudstack 4.3.2 Apache Cloudstack 4.4.0 Apache Cloudstack 4.4.1 Apache Cloudstack 4.4.2 Apache Cloudstack 4.4.3 Apache Cloudstack 4.4.4 Apache Cloudstack 4.5.0 Apache Cloudstack 4.5.1 Apache Cloudstack 4.5.2 Apache Cloudstack 4.5.2.1 Apache Cloudstack 4.5.2.2 Apache Cloudstack 4.6.0 Apache Cloudstack 4.6.1 Apache Cloudstack 4.6.2 Apache Cloudstack 4.6.2.1 Apache Cloudstack 4.7.0 Apache Cloudstack 4.7.1 Apache Cloudstack 4.7.1.1 Apache Cloudstack 4.8 Apache Cloudstack 4.8.0 Apache Cloudstack 4.8.0.1 Apache Cloudstack 4.8.1 Apache Cloudstack 4.8.1.0 Apache Cloudstack 4.8.1.1 Apache Cloudstack 4.9.0 Apache Cloudstack 4.9.0.1 Apache Cloudstack 4.9.1.0 Apache Cloudstack 4.9.2.0 Apache Cloudstack 4.9.3.0 Apache Cloudstack 4.9.3.1 Apache Cloudstack 4.10.0.0 Apache Cloudstack 4.11.0.0 Apache Cloudstack 4.11.1 Apache Cloudstack 4.11.1.0 Apache Cloudstack 4.11.2.0 Apache Cloudstack 4.11.3.0 Apache Cloudstack 4.12.0.0 Apache Cloudstack 4.13.0.0 Apache Cloudstack 4.13.1.0 Apache Cloudstack 4.14.0.0 Apache Cloudstack 4.14.1.0 Apache Cloudstack 4.15.0.0 Apache Cloudstack 4.15.1.0 Apache Cloudstack 4.15.2.0 Apache Cloudstack 4.16.0.0	84

Common Weakness Enumeration (CWE)

CWE-338 - Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References